You can return the certificate that was updated by the procedure in Updating a signed certificate back to default.
- You must have the Storage Administrator (Initial Configuration) role to perform this task.
- You must be logged into the management client.
- A private key (.key file) has been created. Make sure that the file name is server.key. See Creating a private key using the OpenSSL command.
- The passphrase for the private key (server.key file) is released.
- A signed public key certificate (.crt file) has been acquired. Make sure that the file name is server.crt. See Creating a public key using the OpenSSL command.
- The private key (.key file) must be in PEM format. You cannot use DER format.
- The signed public key certificate (.crt file) must be in X509 PEM format. You cannot use X509 DER format. See Obtaining a self-signed certificate.
- The extended profile fields in the X.509 certificate support the following items
as specified in RFC5280:
- BasicConstraints
- KeyUsage
- SubjectKeyIdentifier
- subjectAltName
- The passphrase for the private key (server.key file) must be released.